AMENDMENTS TO THE CLAIMS 



1. (Currently Amended) 1. A system of securely controlling a wireless mobile communication 
device, comprising: 

a plurality of domains residing on a wireless mobile communication device, each at least 
one domain including an as s et a plurality of different types of assets of the wireless mobile 
communication device , the different types of assets within a domain requiring a common level of 
trust to access : and 

a domain controller, on the mobile device, for controlling access to the different types of 
assets that require a common level of trust to access within a domain configured to receive a 
request to perform an operation affecting at least one of the assets, to determine whether the 
request originated with an entity that has a trust relationship with the domain that includes the at 
least one affected asset, and to permit completion of the operation if the request originated with 
an entity that has a trust relationship with the domain that includes the at least one affected asset; 

wherein completion of the operation is not pemiitted if the request originated with, an 
entity that does not have a trust relationship with the domain that includes the at least one 
affected asset . 

2. (Original) The system of claim 1, further comprising a key store for storing cryptographic 
keys associated with the domain that includes the at least one affected asset, wherein the domain 
controller is configured to determine whether the request originated with an entity that has a trust 
relationship with the domain using the cryptographic keys. 
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3. (Original) The system of claim 1, wherein the domain controller is configured to determine 
whether the request originated with the entity that has a trust relationship with the domain that 
includes the at least one affected asset by determining whether the domain that includes the at 
least one affected asset also includes the entity. 

4. (Currently Amended) The system of claim 1, wherein the at least one domain further 
includes as an asset a software application for which the domain controller permits completion of 
the operation upon the software application if the request originated with an entity that has a trust 

relationship with the at least one domain that includes as an asset the software application; 

wherein completion of the operation is not permitted if the request originated with an 
entity that does not have a trust relationship with the at least one domain that includes the 
software application as an asset . 

5. (Original) The system of claim 4, wherein at least one of the domains comprises a plurality 
of domains, and wherein the wireless mobile communication device fiarther comprises a super 
user software application that has a trust relationship with more than one of the plurality of 
domains. 

6. (Original) The system of claim 5, wherein each of the more than one of the plurality of 
domains includes the super user software application. 

7. (Original) The system of claim 1, wherein the domain controller is further configured to 
receive information, and to place the information into a domain. 
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8. (Original) The system of claim 1, wherein the at least one asset is selected from the group 
consisting of: 

communication pipes, persistent data, properties, and software applications. 

9. (Currently Amended) The system of claim 1, further comprising a data store for storing 
properties, wherein the domain controller is further configured to determine whether the 
operation is permitted by properties in the data store, and to permit completion of the operation if 

the operation is permitted by the properties in the data store: 

wherein completion of the operation is not permitted if the operation is not permitted by 
the properties in the data store . 

10. (Original) The system of claim 9, wherein each property is global, domain-specific, or 
specific to a particular software application on the wireless mobile communication device. 

11. (Currently Amended) A method for secure control of a wireless mobile communication 
device, comprising: 

segregating assets of the wireless mobile communication device into a plurality of 
domains, eaeh- at least one domain including at least one asset a plurality of different types of 
assets of the wireless mobile communication device , the different types of assets within a domain 
requiring a common level of tmst to access ; 

receiving a request to perform an operation affecting at least one of the assets; 
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determining via a domain controller on the mobile device whether the operation is 
permitted by the domain that includes the affected asset; and 

allowing the operation to be completed if the operation is permitted by the domain that 
includes the affected asset: 

wherein completion of the operation is not allowed if the operation is not pemiitted by 
the domain that includes the affected asset . 

12. (Original) The method of claim 11, wherein the step of determining comprises the step of 
determining whether the request originated with an entity that has a trust relationship with the 
domain that includes the at least one affected asset. 

13. (Original) The method of claim 12, wherein the step of determining whether the request 
originated with an entity that has a trust relationship with the domain that includes the at least 
one affected asset comprises the step of determining whether the domain that includes the at least 
one affected asset also includes the entity. 

14. (Original) The method of claim 12, wherein the request originates from a software 

application, and wherein the step of determining whether the request originated with an entity 
that has a trust relationship with the domain that includes the at least one affected asset 
comprises the step of verifying a digital signature of the software application using a 
cryptographic key associated with the domain. 

15. (Original) The method of claim 11, fixrther comprising the steps of: 
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receiving information; and 

associating the information with at-Ieast one of the plurality of domains. 

16. (Original) The method of claim 15, wherein the step of associating comprises the step of 
determining with which domains the information is to be associated in accordance with domain 

policies. 

17. (Original) The method of claim 16, wherein the domain policies specify that information is 
to be associated with domains based on one or more of: 

a source of the information, an indicator of a domain in the information, a communication 
pipe over which the information is received, a digital signature of the information, an access list 
describing allowed domain information, and an input from a user of the wireless mobile 
communication device. 

18. (Currently Amended) The method of claim 11, further comprising the step of; 

determining whether the operation is permitted by properties stored at the wireless mobile 
communication device, 

wherein the step of allowing comprises the step of allowing the operation to be completed 
if the operation is permitted by both the domain and the properties; 

wherein the operation is not allowed to be completed if the operation is not permitted by 
both the domain and the properties . 
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19. (Original) The method of claim 18, wherein the step of determining whether the operation is 
permitted by properties stored at the wireless mobile communication device comprises the step 
of checking global properties for the wireless mobile commvinication device and domain 
properties for the domain that includes the at least one affected asset. 

20. (Original) The method of claim 19, wherein the request originates from a software 
application, and wherein the step of determining whether the operation is permitted by properties 
stored at the wireless mobile communication device further comprises the step of checking 
application properties for the software application. 

21. (New) The system of claim 1, wherein one domain includes at least two different assets 
selected from the group of assets consisting of: communication pipes, persistent data, properties, 
and software applications. 
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